Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246311 7.8 危険 アバイア - Avaya one-X Desktop Edition の SIP UAC メッセージ解析モジュールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3317 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
246312 6.8 警告 altap - Altap Servant Salamander の peviewer.spl におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3314 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
246313 7.5 危険 efstratios geroulis - Jasmine CMS における SQL インジェクションの脆弱性 - CVE-2007-3313 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
246314 9 危険 efstratios geroulis - Jasmine CMS の admin/plugin_manager.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3312 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
246315 9.3 危険 Cerulean Studios - Cerulean Studios Trillian におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-3305 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
246316 4.9 警告 Apache Software Foundation - Prefork MPM モジュールを含む Apache httpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション 		CVE-2007-3303 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
246317 9.3 危険 CA Technologies - CA eTrust Intrusion Detection の caller.dll におけるクライアントシステム上で任意の DLL を実行される脆弱性 - CVE-2007-3302 2012-06-26 15:46 2007-07-25 Show GitHub Exploit DB Packet Storm
246318 7.5 危険 FuseTalk - FuseTalk の forum/include/error/autherror.cfm における SQL インジェクションの脆弱性 - CVE-2007-3301 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
246319 9.3 危険 エフ・セキュア - 複数の F-Secure アンチウイルス製品におけるスキャンを回避される脆弱性 - CVE-2007-3300 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
246320 4.3 警告 awffull - AWFFull におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3299 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201 - - - A vulnerability was identified in the ShadowAttribute proposal creation workflow. The add action accepted user-controlled ShadowAttribute request data without removing the id field before saving the … New CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2026-9136 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
202 - - - The CSP report endpoint intended to limit logged CSP reports to 1 KB but incorrectly allowed reports up to 1 MB before truncation. On deployments where the endpoint is reachable by untrusted clients,… New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-9137 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
203 - - - The affected product may expose credentials remotely between low privileged visualization users during concurrent login operations due to insufficient isolation of authentication data. The vulnerabil… New CWE-522
 Insufficiently Protected Credentials 		CVE-2026-0393 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
204 - - - Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests. An attacker can craft a URL that, when opened, results in arbitrary Jav… New CWE-79
Cross-site Scripting 		CVE-2026-6841 2026-05-22 01:04 2026-05-21 Show GitHub Exploit DB Packet Storm
205 4.8 MEDIUM
Network 		- - Incorrect Behaviour of Views with TCP PROXY Requests New CWE-284
Improper Access Control 		CVE-2026-41999 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
206 6.8 MEDIUM
Network 		- - Insufficient Validation of Names During AXFR New CWE-77
Command Injection 		CVE-2026-42000 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
207 7.5 HIGH
Network 		- - Insufficient Validation of Autoprimary SOA Queries New CWE-400
 Uncontrolled Resource Consumption 		CVE-2026-42001 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
208 5.9 MEDIUM
Network 		- - Concurrency and locking defects in GSS-TSIG New CWE-364
 Signal Handler Race Condition 		CVE-2026-42002 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
209 4.9 MEDIUM
Network 		- - Insufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to Fail New CWE-94
Code Injection 		CVE-2026-42396 2026-05-22 00:27 2026-05-21 Show GitHub Exploit DB Packet Storm
210 8.2 HIGH
Network 		- - NVIDIA TensorRT contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to data tampering. New CWE-787
 Out-of-bounds Write 		CVE-2026-24188 2026-05-22 00:26 2026-05-21 Show GitHub Exploit DB Packet Storm